Pastebin comments push ClickFix JavaScript attack to hijack crypto swaps

Threat actors are abusing Pastebin comments to distribute a new ClickFix-style attack that tricks cryptocurrency users into ...
The Hacker News

Google Ties Suspected Russian Actor to CANFAIL Malware Attacks on Ukrainian Orgs

Suspected Russian actor deploys CANFAIL malware via phishing, targeting Ukrainian defense, energy, and aid sectors using ...

Fake CAPTCHA Scam Tricks Windows Users Into Installing Malware

A fake CAPTCHA scam is tricking Windows users into running PowerShell commands that install StealC malware and steal passwords, crypto wallets, and more.
The Hacker News

Microsoft Discloses DNS-Based ClickFix Attack Using Nslookup for Malware Staging

Microsoft details a new ClickFix variant abusing DNS nslookup commands to stage malware, enabling stealthy payload delivery and RAT deployment.

Fake job recruiters hide malware in developer coding challenges

A new variation of the fake recruiter campaign from North Korean threat actors is targeting JavaScript and Python developers ...
Infosecurity Magazine

OysterLoader Evolves With New C2 Infrastructure and Obfuscation

A multi-stage malware loader known as OysterLoader has continued to evolve into early 2026, refining its command-and-control (C2) infrastructure and obfuscation methods.

An ASU frat leader 'frame-mogged' a major livestreamer — and the internet erupted

In certain corners of the internet — and inside middle school classrooms — the worst thing that can happen to you in 2026 isn ...
MIT Technology Review

Welcome to the dark side of crypto’s permissionless dream

Jean-Paul Thorbjornsen is a leader of THORChain, a blockchain that is not supposed to have any leaders—and is reeling from a ...
New York Magazine

Making Sense of the Epstein Files, One Disturbing Search at a Time

From “Trump” to “Russian” to “dentist,” the only way to gaze into the Epstein-files abyss is through a keyword-size hole.

Platforms bend over backward to help DHS censor ICE critics, advocates say

In a lawsuit filed on Wednesday, the Foundation for Individual Rights and Expression (FIRE) accused Attorney General Pam Bondi and Department of Homeland Security Secretary Kristi Noem of coercing ...

Hacker linked to Epstein removed from Black Hat cyber conference website

Emails published by the Justice Department revealed cybersecurity veteran Vincenzo Iozzo emailed, and arranged to meet, Jeffrey Epstein multiple times between 2014 and 2018.